Fortinet Warns of Critical FortiOS SSL VPN Flaw Likely Under Active Exploitation

Fortinet Warns of Critical FortiOS SSL VPN Flaw Likely Under Active Exploitation

/in

Fortinet has disclosed a new critical security flaw in FortiOS SSL VPN that it said is likely being exploited in the wild.
The vulnerability, CVE-2024-21762 (CVSS score: 9.6), allows for the execution of arbitrary code and commands.
“A out-of-bounds write vulnerability [CWE-787] in FortiOS may allow a remote unauthenticated attacker to execute arbitrary code or command via specially

The Hacker News – ​Read More

Stealthy Zardoor Backdoor Targets Saudi Islamic Charity OrganizationsStealthy Zardoor Backdoor Targets Saudi Islamic Charity OrganizationsWarning: New Ivanti Auth Bypass Flaw Affects Connect Secure and ZTA GatewaysWarning: New Ivanti Auth Bypass Flaw Affects Connect Secure and ZTA Gateway...